lumma | 82fc4115362be0a5a3d764f39a35a37c660518b4db8f1dad72d8bfc2873c14e1

General

Target

82fc4115362be0a5a3d764f39a35a37c660518b4db8f1dad72d8bfc2873c14e1.exe
Size

19.4MB
Sample

240818-mpb4mszcme
MD5

39ffd6a6efbba5b27770e9fc08081b4d
SHA1

3025ec9dd77eaeea11edc99d10c0a0e4f93ab6fb
SHA256

82fc4115362be0a5a3d764f39a35a37c660518b4db8f1dad72d8bfc2873c14e1
SHA512

432a403c1eaee92693e46f911d6100bfc880d0934b16e5a195cd4fb7c0ad5cd8a67cdcc2d105422141d6c821df919757718ce10d93de0cdb57e9a573d9867a97
SSDEEP

98304:9Ibrh4dOupmL6781qObxvCJ5hjgJlhzE+cMnri1jo+oGVyQ86z+DdHf/:WN678192PjMU0uVVEHf

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://riffledopspzio.shop/api

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  82fc4115362be0a5a3d764f39a35a37c660518b4db8f1dad72d8bfc2873c14e1.exe
- Size
  
  19.4MB
- MD5
  
  39ffd6a6efbba5b27770e9fc08081b4d
- SHA1
  
  3025ec9dd77eaeea11edc99d10c0a0e4f93ab6fb
- SHA256
  
  82fc4115362be0a5a3d764f39a35a37c660518b4db8f1dad72d8bfc2873c14e1
- SHA512
  
  432a403c1eaee92693e46f911d6100bfc880d0934b16e5a195cd4fb7c0ad5cd8a67cdcc2d105422141d6c821df919757718ce10d93de0cdb57e9a573d9867a97
- SSDEEP
  
  98304:9Ibrh4dOupmL6781qObxvCJ5hjgJlhzE+cMnri1jo+oGVyQ86z+DdHf/:WN678192PjMU0uVVEHf
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2